Fail renew domain

liptechBR · December 7, 2024, 4:36pm

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:liptech.com.br

I ran this command: Proxmox API

It produced this output:

Loading ACME account details

Placing ACME order

Order URL: https://acme-staging-v02.api.letsencrypt.org/acme/order/120313864/21114462944

Getting authorization details from 'https://acme-staging-v02.api.letsencrypt.org/acme/authz/120313864/15269583354'

The validation for horizon.lab.liptech.com.br is pending!

[Sat Dec 7 12:45:59 -03 2024] Adding record

[Sat Dec 7 12:46:00 -03 2024] Added, OK

Add TXT record: _acme-challenge.horizon.lab.liptech.com.br

Sleeping 60 seconds to wait for TXT record propagation

Triggering validation

Sleeping for 5 seconds

Remove TXT record: _acme-challenge.horizon.lab.liptech.com.br

TASK ERROR: validating challenge 'https://acme-staging-v02.api.letsencrypt.org/acme/authz/120313864/15269583354' failed - status: invalid

The operating system my web server runs on is (include version): Proxmox 8.3.0 "Debian GNU/Linux 12 (bookworm)"

I can login to a root shell on my machine (yes or no, or I don't know):yes

MikeMcQ · December 7, 2024, 5:28pm

Welcome @liptechBR

Does this problem still happen? Because I see a certificate recently issued for that domain.

And, this was the error message but I cannot create that error now

"error": {
 "type": "urn:ietf:params:acme:error:dns",
         "detail": "DNS problem: SERVFAIL looking up CAA for horizon.lab.liptech.com.br - the domain's nameservers may be malfunctioning",
         "status": 400
         },

liptechBR · December 7, 2024, 6:34pm

Dear Mike,

I managed to discover the problem, someone irresponsibly added invalid NS entries to the domain.

Thank you for your quick response, and sorry for bothering you with internal problems.

Stay with God.

system · January 6, 2025, 6:34pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Unable to renew cert Help	1	589	January 1, 2021
Failure renewing Certificate, no changes to config Help	3	707	October 24, 2018
Certificate renewal failed for second-level domain Help	4	727	December 18, 2021
Error for Renewal 2018-07-23 20:27 GMT Let’s Encrypt: POST to https://acme-v01.api.letsencrypt.org/acme/new-cert failed Help	4	824	August 26, 2018
Not valid yet, let's wait 10 seconds...until failure Help	11	734	July 13, 2024

Fail renew domain

Related topics